MEMORANDUM. Comments on the Updating of the LSC Risk Management Program
|
|
- Gwenda Armstrong
- 8 years ago
- Views:
Transcription
1 Office of Inspector General Legal Services Corporation 3333 K Street, NW. 3rd Floor Washington, DC (p) (f) MEMORANDUM TO: FROM: LSC Audit Committee Jim J. Sandman, President Ronald S. Flagg, Vice President & General Counsel David Richardson, Treasurer and co,~)td;j. n.).-x.j,y (7, Jeffrey E. Schanz, Inspector Generf~ C. DATE: July 19, 2013 U SUBJECT: Comments on the Updating of the LSC Risk Management Program Introduction: The purpose of this memorandum is to provide the Office of Inspector General (OIG) comments on the updating of the LSC Risk Management Program (RMP) originally released in January 2009, as requested by the Audit Committee at its July 2, 2013 telephonic meeting. Please consider our comments to be advisory in nature. Placing the RMP in the forefront of organizational initiatives is important evidence of leadership by the Audit Committee and Management. Proactively managing risk is a central function of organizational leadership and directly impacts LSC's ability to achieve its operations, reporting and compliance objectives. If mismanaged, risks can carry significant regulatory, financial, and reputational consequences. Overall, the OIG believes LSC should broaden its approach to risk assessment by placing a greater emphasis on a strong and dynamic internal control framework, understood by the Board, LSC Management, LSC staff, and the grantee community. 1 =Ii:LSC II Am.,;",', P."n«For Equ.l Ju.ti«
2 Larger Perspectives on Risk Management: Generally, the OIG recommends that LSC use applicable risk management guides and practices throughout the design and implementation of its risk management program. 1. Promoting a Strong System of Internal Controls The OIG recommends that LSC use an applicable internal control framework to further design its risk management program. 1 The Committee of Sponsoring Organizations of the Treadway Commission (COSO), Internal Control-Integrated Framework, dated May 2013, is comprised of five integrated components including the control environment, risk assessment, control activities (policies and procedures), information and communication, and monitoring activities. While all five components are necessary to successfully implement the framework, Information and Communication, and Monitoring Activities would greatly help the LSC address concerns of being able to exercise its responsibility for organizational risk. The OIG believes that unless such a framework is implemented by LSC, the current risk matrix could eventually meet the same fate as the 2009 matrix as Management officials and Board members change: paraphrasing one Committee member at a recent committee meeting -- The matrix was very helpful; I didn't know it existed. Three publications would be very helpful to the Corporation: 2 a. The Executive Summary to the recently revised COSO Internal Control Integrated Framework, dated May b. OMB Circular A-123-Management's Responsibility for Internal Control. c. Government Accountability Office's (GAO) Standards for Internal Control in the Federal Government. LSC's Accounting Guide for LSC Recipients already emphasizes the COSO Internal Control Framework. Adopting the COSO framework would bring LSC headquarters in agreement with both GAO and the guidance provided to the grantee community. 1 " A strong system of internal controls and oversight helps an organization to identify complications or ga ps in processes, allowi ng fo r a continuing cycle of self-improvement to enhance the efficiency and effectiveness of operations.", Fiscal Oversight Task Force (FOTF) report, July 28, 2011, page Available at https ://oi g.lsc.gov/gov/bi bliography.htm. 2
3 2. Enterprise Risk Managemene - A Larger Dynamic and Systematic Approach to Risk Assessment Further, the OIG recommends LSC use the COSO Enterprise Risk Management Integrated Framework that takes an expanded approach to internal control by including objective settings, event identification, and risk response. 3. Fiscal Oversight Task Force Report The OIG recommends that LSC incorporates the FOTF recommendations (2011) into its risk management program. The report reinforces the importance of internal control to reduce financial risks and achieve stronger fiscal grantee oversight. 4. Essential Elements in the Success of LSC's Risk Management Program Incorporating many of the components of these frameworks, the OIG recommends LSC consider applying the following: a. Strategy and Performance: LSC should identify, review and modify key risks in alignment with the LSC Strategic Plan to more integrate performance and risks. b. Dynamic Process: LSC should not limit its risk assessment to a static or periodic identification and review of key risks but rather include this process in the context of Enterprise Risk Management. Risk Management is a dynamic process that should be ingrained across all activities in the organizational structure and memorialized in policy and culture. c. Tone at the Top: LSC should continue to establish a strong "tone at the top" that stresses a sense of responsibility within all levels of the organization towards the management of risks and achievement of objectives. d. Measurement: LSC should create a series of performance and risk measures to provide the Corporation with more timely information about recent risk events as they pertain to strategic objectives. 3 "Enterprise Risk Management is a process, effected by an entity's board of directors, management and other personnel, applied in strategy setting and across the enterprise, designed to identify potentia l events that may affect the entity, and manage risk to be within its risk appetite, to provide reasonable assurance regard ing the achievement of entity objectives ". The Committee of Sponsoring Organizations of the Treadway Committee (COSO) Enterprise Risk Management-Integrated Framework, Executive Summary, September 2004, Page 2. 3
4 e. Communication and Coordination: i. LSC should ensure relevant information is identified, managed and shared in a timely manner throughout the organization that allows all parties to carry their responsibilities. ii. As recommended by the FOTF report, LSC should create one central information management system to support sharing of grants oversight information across the oversight offices. 4 This could include a centralized risk management module as well. iii. There should be transparency and measurement in all risk management activities with accountability and consequences for failure. f. Training : LSC and its grantees need to ensure individuals across the organization have the proper knowledge and skills to manage risks to achieve mission success. 5 Risk Matrix Comments: Although the OIG supports a broader approach to LSC's risk management program, we offer the following comments on the draft risk matrix for Committee and Management consideration. 5. Further Definition Instead of categorizing risks by People, Funding, Assets and Grantees, LSC should consider aligning its risks to the LSC Strategic Plan's Goals and Initiatives. This would assist LSC's overall monitoring and management of key performance and risk areas. The OIG recommends LSC more specifically clarify and define the risks and their associated mitigation strategies throughout the risk matrix. Further, the Corporation should document the strengths and weaknesses of the strategies and determine the level of tolerance for each risk. 4 "Create a common system for the storing and viewing of appropriate information related to grantee operation s and oversight... "FOTF report, page "The governance and fiscal overs ig ht provid ed by LSC and its grantees should be supported by ind ividuals with knowledge of LSC-related risks as well as strong financial expertise." FOTF Report, page 19. 4
5 6. Additional Risk Area Considerations a. Management Systems Risks : The OIG recommends LSC review whether it has the management systems in place to achieve its goals and objectives. Several management system areas are worthy of inclusion or further strengthening within the RMP. Many of these management systems are commonly identified by the Government Accountability Office in its 2013 High Risk List of Federal Proqrams 6. I. Performance Management (failure to achieve performance of defined goals). Potential Strategy: Create a formal organizational management performance cycle including an annual management plan and quarterly reporting to help routinize the achievement of the LSC multi-year Strategic Plan 's goals and initiatives. ii. Human Capital Management (failure to attract, hire, motivate and retain high quality and innovative staff needed to carryout organizational goals and objectives; poor labor relations - including strikes). Potential Strategies: 1. Define career ladders. 2. Provide professional trainings and continuing education. 3. Implement pay for performance system. 4. Maintain open communication with the union. 5. Transition planning (at all levels). iii. Information Management (failure to collect and share vital information). Potential Strategies: 1. Create a more transparent corporate culture that expects the timely sharing of information and the breaking of information silos. 2. Perform organizational systems analysis identifying most critical information sharing needs (e.g. one common grantee oversight and risk management system). 3. Determine degree of business process maturity and reengineering needs. 4. Perform process automation requirement analysis. 5. Procure or build information systems to enhance core function execution. 6 qov/hiq hriskloverview. 5
6 iv. Cost Management (unknown waste related to insufficient cost reporting). Potential Strategy: LSC could review the managerial accounting reporting and timekeeping systems to determine if the organization would be better supported by an activity based management system (integrating budget, resources, plans, actions, costs and performance). This could allow costs (including human resource costs) of all operational projects to be visible, creating more management information potentially leading to cost savings through process improvements or eliminations. v. Acquisitions Management (higher contract costs and possible areas of fraud, waste and abuse). LSC should consider adding acquisitions management as a potential risk area both for LSC Management and Grantee Operations. Weaknesses in acquisition systems, the procurement process, policies and procedures, accountability and contracts management are all areas of possible concern. b. LSC Regulations (Risk that regulations do not clearly and effectively implement statutory requirements). To the extent it exists, ambiguity or obscurity in regulatory language and official LSC interpretations can make compliance by grantees and enforcement by the Corporation more difficult. Additionally, changing circumstances extrinsic to the rules themselves may alter the impact of rules on grantees and their effectiveness, e.g., technological changes could lead to reduced burden on grantees, other extrinsic changes lead to increased or decreased burden on grantees. c. Grant Competition (Low grantee production). The lack of an openly competitive landscape for LSC services hurts innovation and incentives to provide more efficient service delivery within the LSC funded network of grantees. Potential Strategies: LSC could review restructuring of the grants and alternative delivery strategies. d. Subgrant Oversight and Performance: This is a traditional concern area for Federal grant programs as subgrant oversight is often missed. e. Information Technology: a. Investment. (Failure to architect LSC technology initiatives portfolio to maximize returns on investments). 6
7 Potential Strategies: 1. LSC has hired a Chief Information Officer. 2. Create a national legal aid technology investment plan focusing in the highest return on investment projects and national replication. 3. Create a Board Technology Committee or Information Technology Investment Review Committee to frequently oversee this critical area in enabling LSC grantees and legal aid providers to serve more eligible persons. b. Security. There are high information security management risks at grantees (e.g., grantees are using internet based case management systems and mobile applications). Potential Strategy: LSC should review the grantees' security policies and provide guidance for protecting sensitive client and case information and other relevant organizational data. 7. Risk Probability Considerations The OIG recommends LSC review the probability and severity rankings in the following areas: a. LSC Management Leadership: Preventing Leadership Problems. There are many new senior management team members (with less than one year of LSC experience), an impending reorganization, as well as open collective bargaining negotiations; thus, an unstable environment. b. Conflicts of Interest/Ethics Violations. As noted in the FOTF report LSC should continue to identify, monitor, and disclose conflicts of interest related to staff and grantees. c. Preservation of LSC interest in grantee property (potential for loss). Beyond Human Capital, the next largest cost area in legal services is real estate. LSC's real estate interests include the preservation of LSC interest in grantee properties nationwide and the headquarters lease and potential transition to ownership. d. Major Misuse of grant funds. LSC should pay attention to all, not just major misuses of grant funds. Any misuse is an indicator of general mismanagement. e. Failure of insufficient controls. Internal controls are critical and likely not well-understood. 7
1/ff~. Schanz Inspector General. March 26, 2015
Office of Inspector General Legal Services Corporation Inspector General Jeffrey E. Schanz 3333 K Street, NW, 3rd Floor Washington, DC 20007-3558 202.295.1660 (p) 202.337.6616 (f) www.oig.lsc.gov March
More informationFive-Year Strategic Plan
U.S. Department of Education Office of Inspector General Five-Year Strategic Plan Fiscal Years 2014 2018 Promoting the efficiency, effectiveness, and integrity of the Department s programs and operations
More informationGAO. Standards for Internal Control in the Federal Government. Internal Control. United States General Accounting Office.
GAO United States General Accounting Office Internal Control November 1999 Standards for Internal Control in the Federal Government GAO/AIMD-00-21.3.1 Foreword Federal policymakers and program managers
More informationAUDIT REPORT REPORT NUMBER 14 08. Information Technology Professional Services Oracle Software March 25, 2014
AUDIT REPORT REPORT NUMBER 14 08 Information Technology Professional Services Oracle Software March 25, 2014 Date March 25, 2014 To Chief Information Officer Director, Acquisition Services From Inspector
More informationU.S. Department of Justice Office of the Inspector General. Improving the Grant Management Process
U.S. Department of Justice Office of the Inspector General Improving the Grant Management Process February 2009 u.s. Department of Justice Office of the Inspector General Improving the Grant Management
More informationAudit of NRC s Network Security Operations Center
Audit of NRC s Network Security Operations Center OIG-16-A-07 January 11, 2016 All publicly available OIG reports (including this report) are accessible through NRC s Web site at http://www.nrc.gov/reading-rm/doc-collections/insp-gen
More informationOffice of Inspector General
Office of Inspector General Loan Account Reporting System 03-01 August 2003 August 28, 2003 The Honorable Michael M. Reyna Chairman of the Board and Chief Executive Officer Farm Credit Administration 1501
More informationFraud Risk Management
Fraud Risk Management Overview Discussion Questions 1) Does your organization follow a specific risk management model? If so, which one? Do you think this model adequately addresses the risks your organization
More informationADVISORY MEMORANDUM REPORT ON DEVELOPMENT OF THE LOAN MONITORING SYSTEM ADVISORY REPORT NUMBER A1-03 FEBRUARY 23, 2001
ADVISORY MEMORANDUM REPORT ON DEVELOPMENT OF THE LOAN MONITORING SYSTEM ADVISORY REPORT NUMBER A1-03 FEBRUARY 23, 2001 This report may contain proprietary information subject to the provisions of 18 USC
More informationControls Over EPA s Compass Financial System Need to Be Improved
U.S. ENVIRONMENTAL PROTECTION AGENCY OFFICE OF INSPECTOR GENERAL Controls Over EPA s Compass Financial System Need to Be Improved Report No. 13-P-0359 August 23, 2013 Scan this mobile code to learn more
More informationFebruary 2001 HEADS OF DEPARTMENTS AND AGENCIES
United States General Accounting Office Washington, DC 20548 February 2001 HEADS OF DEPARTMENTS AND AGENCIES The Federal Managers Financial Integrity Act of 1982 requires, among other things, that the
More informationAMTRAK CORPORATE GOVERNANCE: Implementing a Risk Management Framework is Essential to Achieving Amtrak s Strategic Goals
AMTRAK CORPORATE GOVERNANCE: Implementing a Risk Management Framework is Essential to Achieving Amtrak s Strategic Goals Report No. OIG-A-2012-007 March 30, 2012 NATIONAL RAILROAD PASSENGER CORPORATION
More informationUNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL
UNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL AUDIT SERVICES March 24, 2015 Control Number ED-OIG/A05N0012 James W. Runcie Chief Operating Officer Federal Student Aid U.S. Department
More informationAUDIT OF THE MANAGEMENT OF GRANTS AWARDED BY USAID S OFFICE OF AMERICAN SCHOOLS AND HOSPITALS ABROAD
OFFICE OF INSPECTOR GENERAL AUDIT OF THE MANAGEMENT OF GRANTS AWARDED BY USAID S OFFICE OF AMERICAN SCHOOLS AND HOSPITALS ABROAD AUDIT REPORT NO. 9-000-12-002-P MARCH 19, 2012 WASHINGTON, D.C. Office of
More informationOffice of Inspector General
DEPARTMENT OF HOMELAND SECURITY < Office of Inspector General Letter Report: Review of DHS Financial Systems Consolidation Project OIG-08-47 May 2008 Office of Inspector General U.S. Department of Homeland
More informationOffice of Inspector General Pension Benefit Guaranty Corporation
Office of Inspector General Pension Benefit Guaranty Corporation RISK ADVISORY February 19, 2016 To: From: Subject: W. Thomas Reeder, Jr. Director Robert A. Westbrooks Inspector General Monitoring and
More informationOFFICE OF THE INSPECTOR GENERAL SOCIAL SECURITY ADMINISTRATION
OFFICE OF THE INSPECTOR GENERAL SOCIAL SECURITY ADMINISTRATION CONTRACTOR SECURITY OF THE SOCIAL SECURITY ADMINISTRATION S HOMELAND SECURITY PRESIDENTIAL DIRECTIVE 12 CREDENTIALS June 2012 A-14-11-11106
More informationState and District Monitoring of School Improvement Grant Contractors in California FINAL AUDIT REPORT
State and District Monitoring of School Improvement Grant Contractors in California FINAL AUDIT REPORT ED-OIG/A09O0009 March 2016 Our mission is to promote the efficiency, effectiveness, and integrity
More informationAUDIT REPORT REPORT NUMBER 14 10. Information Technology Microsoft Software Licenses March 27, 2014
AUDIT REPORT REPORT NUMBER 14 10 Information Technology Microsoft Software Licenses March 27, 2014 Date March 27, 2014 To Chief Information Officer From Inspector General Subject Audit Report Information
More informationMODULE DESCRIPTIONS. A Brief Introduction to SMART Training (20 minutes)
MODULE DESCRIPTIONS A Brief Introduction to SMART Training (20 minutes) This module introduces the SMART theme for the series of training modules on developing and implementing sound financial management
More informationThe Role of the Board in Enterprise Risk Management
Enterprise Risk The Role of the Board in Enterprise Risk Management The board of directors plays an essential role in ensuring that an effective ERM program is in place. Governance, policy, and assurance
More informationLEGAL SERVICES CORPORATION OFFICE OF INSPECTOR GENERAL REVIEW OF GRANTEE'S TRANSFEROFFUNDS AND COMPLIANCE WITH PROGRAM INTEGRITY STANDARDS
LEGAL SERVICES CORPORATION OFFICE OF INSPECTOR GENERAL REVIEW OF GRANTEE'S TRANSFEROFFUNDS AND COMPLIANCE WITH PROGRAM INTEGRITY STANDARDS II " LSC Grantee: Legal Aid Society of Greater Cincinnati Recipient
More informationCMS DID NOT ALWAYS MANAGE AND OVERSEE CONTRACTOR PERFORMANCE
Department of Health and Human Services OFFICE OF INSPECTOR GENERAL CMS DID NOT ALWAYS MANAGE AND OVERSEE CONTRACTOR PERFORMANCE FOR THE FEDERAL MARKETPLACE AS REQUIRED BY FEDERAL REQUIREMENTS AND CONTRACT
More informationSemiannual Report to Congress. Office of Inspector General
Semiannual Report to Congress Office of Inspector General Federal Election Commission 999 E Street, N.W., Suite 940 Washington, DC 20463 April 1, 2005 September 30, 2005 November 2005 TABLE OF CONTENTS
More informationAUDIT REPORT. The Department of Energy's Management of Cloud Computing Activities
U.S. Department of Energy Office of Inspector General Office of Audits and Inspections AUDIT REPORT The Department of Energy's Management of Cloud Computing Activities DOE/IG-0918 September 2014 Department
More informationBEST PRACTICES IN IMPLEMENTING MANAGERIAL COST ACCOUNTING. OIG/00E-06 April 24, 2000
BEST PRACTICES IN IMPLEMENTING MANAGERIAL COST ACCOUNTING OIG/00E-06 April 24, 2000 MEMORANDUM TO: Chairman Meserve FROM: Hubert T. Bell Inspector General SUBJECT: BEST PRACTICES IN IMPLEMENTING MANAGERIAL
More informationGAO DATA CENTER CONSOLIDATION. Strengthened Oversight Needed to Achieve Cost Savings Goal. Report to Congressional Requesters
GAO United States Government Accountability Office Report to Congressional Requesters April 2013 DATA CENTER CONSOLIDATION Strengthened Oversight Needed to Achieve Cost Savings Goal GAO-13-378 April 2013
More information=LLSC II Am.nQ. r.._. Fo< f1oul Jouai<>e. March 30, 2015
Office of Inspector General Legal Services Corporation Inspector General Jeffrey E. Schanz 3333 K Street, Nw. 3rd Floor Washington, DC 20007-3558 202.295. 1660 (p) 202.337.6616 (f) www.oig.lsc.gov March
More informationNOT ALL COMMUNITY SERVICES BLOCK GRANT RECOVERY ACT COSTS CLAIMED
Department of Health and Human Services OFFICE OF INSPECTOR GENERAL NOT ALL COMMUNITY SERVICES BLOCK GRANT RECOVERY ACT COSTS CLAIMED ON BEHALF OF THE COMMUNITY ACTION PARTNERSHIP OF NATRONA COUNTY FOR
More informationIntroduction to Enterprise Risk Management at UVM DRAFT
Introduction to Enterprise Management at UVM 1 Enterprise What is Enterprise Management? Enterprise risk management is a structured, consistent, and continuous process across the whole organization for
More informationU.S. Department of Agriculture Office of Inspector General Financial and IT Operations Audit Report
U.S. Department of Agriculture Office of Inspector General Financial and IT Operations Audit Report FISCAL YEAR 2000 NATIONAL FINANCE CENTER REVIEW OF INTERNAL CONTROLS NAT Report No. 11401-7-FM June 2001
More informationDepartment of Veterans Affairs VA Directive 0054. VA Enterprise Risk Management (ERM)
Department of Veterans Affairs VA Directive 0054 Washington, DC 20420 Transmittal Sheet April 8, 2014 VA Enterprise Risk Management (ERM) 1. REASON FOR ISSUE: This directive provides guidelines to help
More informationHow To Check If Nasa Can Protect Itself From Hackers
SEPTEMBER 16, 2010 AUDIT REPORT OFFICE OF AUDITS REVIEW OF NASA S MANAGEMENT AND OVERSIGHT OF ITS INFORMATION TECHNOLOGY SECURITY PROGRAM OFFICE OF INSPECTOR GENERAL National Aeronautics and Space Administration
More informationINFORMATION TECHNOLOGY: Reservation System Infrastructure Updated, but Future System Sustainability Remains an Issue
INFORMATION TECHNOLOGY: Reservation System Infrastructure Updated, but Future System Audit Report OIG-A-2015-010 May 19, 2015 This page intentionally left blank. NATIONAL RAILROAD PASSENGER CORPORATION
More informationIndependent Auditors Report
KPMG LLP Suite 12000 1801 K Street, NW Washington, DC 20006 Independent Auditors Report Administrator and Acting Inspector General United States General Services Administration: Report on the Financial
More informationManagement of Detail Assignments Follow-Up
Management of Detail Assignments Follow-Up Audit Report Report Number DP-AR-14-007 September 26, 2014 Highlights From June through December 2013 the Postal Service spent about $17.8 million on travel related
More informationAugust 9, 2010. Report Number: A-07-09-03136
DEPARTMENT OF HEALTH & HUMAN SERVICES Office of Inspector General Office of Audit Services, Region VII 601 East 12 th Street, Room 0429 Kansas City, MO 64106 August 9, 2010 Report Number: A-07-09-03136
More informationHUD Hired Employees in Accordance With Office of Personnel Management Guidelines for Streamlining the Federal Hiring Process HIGHLIGHTS
Issue Date January 25, 2011 Audit Report Number 2011-PH-0001 TO: FROM: SUBJECT: Janie Payne, General Deputy Assistant Secretary/Chief Human Capital Officer, A //signed// John P. Buck, Regional Inspector
More informationIndependent Evaluation of NRC s Implementation of the Federal Information Security Modernization Act of 2014 for Fiscal Year 2015
Independent Evaluation of NRC s Implementation of the Federal Information Security Modernization Act of 2014 for Fiscal Year 2015 OIG-16-A-03 November 12, 2015 All publicly available OIG reports (including
More informationREVIEW OF NASA S INTERNAL CONTROLS FOR AWARDS WITH SMALL BUSINESSES
FEBRUARY 28, 2013 AUDIT REPORT OFFICE OF AUDITS REVIEW OF NASA S INTERNAL CONTROLS FOR AWARDS WITH SMALL BUSINESSES OFFICE OF INSPECTOR GENERAL National Aeronautics and Space Administration REPORT NO.
More informationTexas Workforce Commission
Fiscal Year 2016 Audit Plan Approved by Commission September 28, 2015 Fiscal Year 2016 Audit Plan 1 Table of Contents Overview... 3 The Role of Internal Audit... 3 Professional and Statutory Requirements...
More informationAudit of the Policy on Internal Control Implementation
Audit of the Policy on Internal Control Implementation Natural Sciences and Engineering Research Council of Canada Social Sciences and Humanities Research Council of Canada February 18, 2013 1 TABLE OF
More informationDOD BUSINESS SYSTEMS MODERNIZATION. Additional Action Needed to Achieve Intended Outcomes
United States Government Accountability Office Report to Congressional Committees July 2015 DOD BUSINESS SYSTEMS MODERNIZATION Additional Action Needed to Achieve Intended Outcomes GAO-15-627 July 2015
More informationSeptember 2008 Report No. AUD-08-016. Controls Over Contractor Payments for Relocation Services AUDIT REPORT
September 2008 Report No. AUD-08-016 Controls Over Contractor Payments for Relocation Services AUDIT REPORT Report No. AUD-08-016 September 2008 Controls Over Contractor Payments for Relocation Services
More informationWork Plan ongoing and planned audit and evaluation projects. Current as of June 5, 2015
Work Plan ongoing and planned audit and evaluation projects Current as of June 5, 2015 Overview The Work Plan presents the audits and evaluations that the Office of Inspector General (OIG) is conducting
More informationClOP CHAPTER 1351.39. Departmental Information Technology Governance Policy TABLE OF CONTENTS. Section 39.1
ClOP CHAPTER 1351.39 Departmental Information Technology Governance Policy TABLE OF CONTENTS Section 39.1 Purpose... 1 Section 39.2 Section 39.3 Section 39.4 Section 39.5 Section 39.6 Section 39.7 Section
More informationRichard Cordray Director Consumer Financial Protection Bureau. The OIG s List of Major Management Challenges for the CFPB
September 30, 2014 MEMORANDUM TO: FROM: SUBJECT: Richard Cordray Director Consumer Financial Protection Bureau Mark Bialek Inspector General The OIG s List of Major Management Challenges for the CFPB We
More informationTHE FCA INSPECTOR GENERAL: A COMMITMENT TO PUBLIC SERVICE
THE FCA INSPECTOR GENERAL: A COMMITMENT TO PUBLIC SERVICE FORWARD I am pleased to introduce the mission and authorities of the Office of Inspector General for the Farm Credit Administration. I hope this
More informationDepartment of Homeland Security Office of Inspector General
Department of Homeland Security Office of Inspector General Review of the Department of Homeland Security s Master List of Recovery Act Contracts and Grants American Recovery and Reinvestment Act of 2009
More informationUNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL
UNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL AUDIT SERVICES August 24, 2015 Control Number ED-OIG/A04N0004 James W. Runcie Chief Operating Officer U.S. Department of Education Federal
More informationUnited States General Accounting Office GAO. Internal Control Standards. Internal Control Management and Evaluation Tool. August 2001 GAO-01-1008G
GAO United States General Accounting Office Internal Control Standards August 2001 Internal Control Management and Evaluation Tool GAO-01-1008G PREFACE August 2001 The General Accounting Office (GAO)
More information2015 List of Major Management Challenges for the CFPB
September 30, 2015 MEMORANDUM TO: FROM: SUBJECT: Richard Cordray Director Consumer Financial Protection Bureau Mark Bialek Inspector General 2015 List of Major Management Challenges for the CFPB We are
More informationM ANAGEMENT I NTEGRATION G OAL. Achieve organizational and management excellence
M ANAGEMENT I NTEGRATION G OAL Achieve organizational and management excellence 71 MANAGEMENT INTEGRATION STRATEGIC GOAL Management Integration Goal Achieve organizational and management excellence The
More informationMISSION VALUES. The guide has been printed by:
www.cudgc.sk.ca MISSION We instill public confidence in Saskatchewan credit unions by guaranteeing deposits. As the primary prudential and solvency regulator, we promote responsible governance by credit
More informationNATIONAL CREDIT UNION ADMINISTRATION OFFICE OF INSPECTOR GENERAL
NATIONAL CREDIT UNION ADMINISTRATION OFFICE OF INSPECTOR GENERAL FY 2015 INDEPENDENT EVALUATION OF THE EFFECTIVENESS OF NCUA S INFORMATION SECURITY PROGRAM UNDER THE FEDERAL INFORMATION SECURITY MODERNIZATION
More informationAUDIT OF READINESS FOR THE IMPLEMENTATION OF THE POLICY ON INTERNAL CONTROL
AUDIT OF READINESS FOR THE IMPLEMENTATION OF THE POLICY ON INTERNAL CONTROL AUDIT REPORT JUNE 2010 TABLE OF CONTENTS EXCUTIVE SUMMARY... 3 1 INTRODUCTION... 5 1.1 AUDIT OBJECTIVE. 5 1.2 SCOPE...5 1.3 SUMMARY
More informationHEALTH INSURANCE MARKETPLACES GENERALLY PROTECTED PERSONALLY IDENTIFIABLE INFORMATION BUT COULD IMPROVE CERTAIN INFORMATION SECURITY CONTROLS
Department of Health and Human Services OFFICE OF INSPECTOR GENERAL HEALTH INSURANCE MARKETPLACES GENERALLY PROTECTED PERSONALLY IDENTIFIABLE INFORMATION BUT COULD IMPROVE CERTAIN INFORMATION SECURITY
More informationOFFICE OF THE INSPECTOR GENERAL SOCIAL SECURITY ADMINISTRATION CONTRACT WITH DELL MARKETING, L.P., FOR MICROSOFT LICENSING AND MAINTENANCE
OFFICE OF THE INSPECTOR GENERAL SOCIAL SECURITY ADMINISTRATION CONTRACT WITH DELL MARKETING, L.P., FOR MICROSOFT LICENSING AND MAINTENANCE September 2011 A-06-10-10175 AUDIT REPORT Mis s ion By conducting
More informationFiscal Year 2014 Work Plan
Federal Election Commission Office of Inspector General Fiscal Year 2014 Work Plan Lynne A. McFarland Inspector General TABLE OF CONTENTS A Message from the Inspector General--------------------------------------------
More informationDepartment of Homeland Security Office of Inspector General. Improvements Needed in Federal Emergency Management Agency Monitoring of Grantees
Department of Homeland Security Office of Inspector General Improvements Needed in Federal Emergency Management Agency Monitoring of Grantees OIG-09-38 March 2009 Office of Inspector General U.S. Department
More informationUNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL
UNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL Evaluation and Inspection Services Memorandum May 5, 2009 TO: FROM: SUBJECT: James Manning Acting Chief Operating Officer Federal Student
More informationCore Monitoring Guide
Core Monitoring Guide April 2005 eta UNITED STATES DEPARTMENT OF LABOR EMPLOYMENT AND TRAINING ADMINISTRATION Core Monitoring Guide April 2005 United States Department of Labor Employment and Training
More informationUnited States Department of Agriculture Office of Inspector General
United States Department of Agriculture Office of Inspector General United States Department of Agriculture Office of Inspector General Washington, D.C. 20250 DATE: June 18, 2012 AUDIT NUMBER: 02703-0002-10
More informationGOVERNANCE: Opportunities Exist to Improve the Travel Card Program and Reduce Risks
GOVERNANCE: Opportunities Exist to Improve the Travel Card Program and Reduce Risks Audit Report No. OIG-A-2014-005 April 18, 2014 This page intentionally left blank. NATIONAL RAILROAD PASSENGER CORPORATION
More informationA Risk-Based Audit Strategy November 2006 Internal Audit Department
Mental Health Mental Retardation Authority of Harris County ENTERPRISE RISK MANAGEMENT A Framework For Assessing, Evaluating And Measuring Our Agency s Risk A Risk-Based Audit Strategy November 2006 Internal
More informationUSAID Management Operations Council Charter
USAID Management Operations Council Charter Version 1.0 Date: August 1, 2011 TABLE OF CONTENTS 1. INTRODUCTION... 1 1.1 PURPOSE... 1 1.2 OBJECTIVE... 1 1.3 SCOPE... 1 2. OVERVIEW OF THE MOC... 1 2.1 MOC
More informationOFFICE OF THE INSPECTOR GENERAL SOCIAL SECURITY ADMINISTRATION
OFFICE OF THE INSPECTOR GENERAL SOCIAL SECURITY ADMINISTRATION THE SOCIAL SECURITY ADMINISTRATION S RECOVERY ACT-FUNDED CONTRACT WITH INTERNATIONAL BUSINESS MACHINES, INC., BLANKET PURCHASE AGREEMENT SS00-08-40004,
More informationFiscal Year 2007 Federal Information Security Management Act Report
OFFICE OF INSPECTOR GENERAL Special Report Catalyst for Improving the Environment Fiscal Year 2007 Federal Information Security Management Act Report Status of EPA s Computer Security Program Report No.
More informationU.S. Department of Education. Office of the Chief Information Officer
U.S. Department of Education Office of the Chief Information Officer Investment Review Board (IRB) CHARTER January 23, 2013 I. ESTABLISHMENT The Investment Review Board (IRB) is the highest level IT investment
More informationDepartment of Veterans Affairs Office of Inspector General Strategic Plan FY 2009-2015
Department of Veterans Affairs Office of Inspector General Strategic Plan FY 2009-2015 Plans are nothing; planning is everything. -Dwight D. Eisenhower The Strategic Plan of the VA Office of Inspector
More informationGAO HIGHER EDUCATION. Issues Related to Law School Accreditation. Report to Congressional Requesters. United States Government Accountability Office
GAO United States Government Accountability Office Report to Congressional Requesters March 2007 HIGHER EDUCATION Issues Related to Law School Accreditation GAO-07-314 Contents Letter 1 Appendix I Briefing
More informationU.S. Department of Energy Office of Inspector General Office of Audits and Inspections
U.S. Department of Energy Office of Inspector General Office of Audits and Inspections Audit Report The Department's Configuration Management of Non-Financial Systems OAS-M-12-02 February 2012 Department
More informationSubject: GSA On-line Procurement Programs Lack Documentation and Reliability Testing
United States General Accounting Office Washington, DC 20548 December 21, 2001 The Honorable Stephen A. Perry Administrator General Services Administration 1800 F Street NW Washington, DC 20405 Subject:
More information10-005 Enterprise Risk Management
10-005 Enterprise Risk Management Current update: 09/16/10 Original Issuance: 03/31/08 Purpose This policy provides guidance and direction to State Board of Administration business unit heads for identifying,
More information2016 SUBGRANT AGREEMENT FORM FORM A
2016 SUBGRANT AGREEMENT FORM FORM A Recipient Name: Recipient Number: Subrecipient Name: Subrecipient Email: Term of Agreement: Total Monetary Amount to be Subgranted: Please provide details regarding
More informationGAO INFORMATION TECHNOLOGY. SBA Needs to Strengthen Oversight of Its Loan Management and Accounting System Modernization
GAO United States Government Accountability Office Report to the Chairman, Committee on Small Business, House of Representatives January 2012 INFORMATION TECHNOLOGY SBA Needs to Strengthen Oversight of
More informationUNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL. March 9, 2012
UNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL March 9, 2012 Evaluation and Inspection Services Control Number ED-OIG/I13K0002 Anthony W. Miller Deputy Secretary U.S. Department of Education
More informationAUDIT REPORT. The Energy Information Administration s Information Technology Program
U.S. Department of Energy Office of Inspector General Office of Audits and Inspections AUDIT REPORT The Energy Information Administration s Information Technology Program DOE-OIG-16-04 November 2015 Department
More informationMay 2013. Fiscal Year 2015 Federal Program Inventory
May 2013 Fiscal Year 2015 Federal Program Inventory Table of Contents I. INTRODUCTION... 1 II. APPROACH... 1 III. OPM PROGRAM INVENTORY... 2 1. Federal Employee Policy Oversight... 3 2. Federal Employee
More informationTHE ROLE OF FINANCE AND ACCOUNTING IN ENTERPRISE RISK MANAGEMENT
THE ROLE OF FINANCE AND ACCOUNTING IN ENTERPRISE RISK MANAGEMENT Let me begin by thanking Baruch College for giving me the opportunity to present this year s prestigious Emanuel Saxe Lecture in Accounting.
More information~ l O~rs. UNITED STATES DEPARTMENT OF COMMERCE Office of Inspector General Washington. D.C. 20230. August 9, 20 12
UNITED STATES DEPARTMENT OF COMMERCE Office of Inspector General Washington. D.C. 20230 August 9, 20 12 MEMORANDUM FOR: FROM: SUBJECT: Lawrence E. Strickling Assistant Secretary for Communications and
More informationUNITED STATES COMMISSION ON CIVIL RIGHTS WASHINGTON, D.C. 20425
UNITED STATES COMMISSION ON CIVIL RIGHTS WASHINGTON, D.C. 20425 OFFICE OF STAFF DIRECTOR September 30, 2005 The Honorable Thad Cochran Chairman United States Senate Committee on Appropriations Washington,
More informationGOVERNMENT INFORMATION SECURITY REFORM ACT STATUS OF EPA S COMPUTER SECURITY PROGRAM
Office of Inspector General Audit Report GOVERNMENT INFORMATION SECURITY REFORM ACT STATUS OF EPA S COMPUTER SECURITY PROGRAM Report Number: 2001-P-00016 September 7, 2001 Inspector General Division Conducting
More informationDepartment of Health and Human Services OFFICE OF INSPECTOR GENERAL
Department of Health and Human Services OFFICE OF INSPECTOR GENERAL THE CENTERS FOR MEDICARE & MEDICAID SERVICES IMPLEMENTATION OF SECURITY CONTROLS OVER THE MULTIDIMENSIONAL INSURANCE DATA ANALYTICS SYSTEM
More informationINSPECTOR GENERAL UNITED STATES POSTAL SERVICE
OFFICE OF INSPECTOR GENERAL UNITED STATES POSTAL SERVICE Corporate Succession Planning Program Management Advisory Report April 23, 2014 Report Number April 23, 2014 Corporate Succession Planning Program
More informationFraud Prevention and Deterrence
Fraud Prevention and Deterrence Fraud Risk Assessment 2016 Association of Certified Fraud Examiners, Inc. What Is Fraud Risk? The vulnerability that an organization faces from individuals capable of combining
More informationVETERANS AFFAIRS CONTRACTING Improved Oversight Needed for Certain Contractual Arrangements
United States Government Accountability Office Testimony before the Subcommittee on Oversight and Investigations, Committee on Veterans' Affairs, House of Representatives For Release on Delivery Expected
More informationFiscal Year 2014 Federal Information Security Management Act Report: Status of EPA s Computer Security Program
U.S. ENVIRONMENTAL PROTECTION AGENCY OFFICE OF INSPECTOR GENERAL Information Technology Fiscal Year 2014 Federal Information Security Management Act Report: Status of EPA s Computer Security Program Report.
More informationGAO INFORMATION TECHNOLOGY MANAGEMENT. Small Business Administration Needs Policies and Procedures to Control Key IT Processes.
GAO United States General Accounting Office Testimony Before the Committee on Small Business, U.S. Senate For Release on Delivery Expected at 9:30 a.m. EDT Thursday, July 20, 2000 INFORMATION TECHNOLOGY
More informationU.S. OFFICE OF PERSONNEL MANAGEMENT OFFICE OF THE INSPECTOR GENERAL OFFICE OF AUDITS. Final Audit Report
U.S. OFFICE OF PERSONNEL MANAGEMENT OFFICE OF THE INSPECTOR GENERAL OFFICE OF AUDITS Final Audit Report Audit of the Information Technology Security Controls of the U.S. Office of Personnel Management
More informationAccountant (GS-510) Competency Model
Accountant (GS-510) Competency Model [Note: This competency model framework allows for the development of a customized GS-0510 Accountant competency model using competencies suggested by the CFO Council.]
More informationTHE GOVERNANCE OF RISK MANAGEMENT. Session 5
THE GOVERNANCE OF RISK MANAGEMENT Session 5 Polling Question: Who is primarily responsible for risk governance in any organization? 0% A. The board or board risk committee (if applicable) B. The CRO 0%
More informationGENERAL SERVICES ADMINISTRATION Federal Acquisition Service Mission Oriented Business Integrated Services (MOBIS) SCHEDULE PRICE LIST
GENERAL SERVICES ADMINISTRATION Federal Acquisition Service Mission Oriented Business Integrated Services (MOBIS) SCHEDULE PRICE LIST SIN 874-7 Interior Systems, Inc., dba ISI Professional Services 1201
More informationUNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL. January 25, 2016
UNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL AUDIT SERVICES Sacramento Audit Region January 25, 2016 Dr. Mitchell D. Chester Commissioner Massachusetts Department of Elementary and
More informationNATIONAL CREDIT UNION ADMINISTRATION OFFICE OF INSPECTOR GENERAL
NATIONAL CREDIT UNION ADMINISTRATION OFFICE OF INSPECTOR GENERAL INDEPENDENT EVALUATION OF THE NATIONAL CREDIT UNION ADMINISTRATION S COMPLIANCE WITH THE FEDERAL INFORMATION SECURITY MANAGEMENT ACT (FISMA)
More informationDepartment of Homeland Security Office of Inspector General. FLETC Leases for Dormitories 1 and 3
Department of Homeland Security Office of Inspector General FLETC Leases for Dormitories 1 and 3 OIG-10-02 October 2009 Office of Inspector General U.S. Department of Homeland Security Washington, DC 20528
More informationAUDIT REPORT. Follow-up on the Department of Energy's Acquisition and Maintenance of Software Licenses
U.S. Department of Energy Office of Inspector General Office of Audits and Inspections AUDIT REPORT Follow-up on the Department of Energy's Acquisition and Maintenance of Software Licenses DOE/IG-0920
More informationUNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL 400 MARYLAND AVENUE, S.W. WASHINGTON, DC 20202-1500.
UNITED STATES DEPARTMENT OF EDUCATION OFFICE OF INSPECTOR GENERAL 400 MARYLAND AVENUE, S.W. WASHINGTON, DC 20202-1500 February 1, 2006 Michell Clark, Designee Assistant Secretary for Management and Acting
More informationLEGAL SERVICES CORPORATION OFFICE OF INSPECTOR GENERAL FINAL REPORT ON SELECTED INTERNAL CONTROLS RHODE ISLAND LEGAL SERVICES, INC.
LEGAL SERVICES CORPORATION OFFICE OF INSPECTOR GENERAL FINAL REPORT ON SELECTED INTERNAL CONTROLS RHODE ISLAND LEGAL SERVICES, INC. RNO 140000 Report No. AU 16-05 March 2016 www.oig.lsc.gov TABLE OF CONTENTS
More information